function Reload_Chart($name)
{
if (!$name) {
if (isset($_SESSION['webcharts'])) {
return true;
} else {
HeaderRedirect("webreport");
}
}
$arr = getChartArray($name);
if (!count($arr)) {
HeaderRedirect("webreport");
}
if (!$arr["table_type"]) {
if ($arr["db_based"]) {
$arr["table_type"] = "db";
} else {
$arr["table_type"] = "project";
}
}
$_SESSION['webcharts'] = $arr;
$_SESSION["webobject"]["table_type"] = $_SESSION['webcharts']["table_type"];
$_SESSION["webobject"]["name"] = $_SESSION['webcharts']['settings']['name'];
}
/**
* Check whether the user is allowed to see the page
*/
protected function readRecord()
{
if ($this->getCurrentRecordInternal()) {
return true;
}
if ($this->mode == VIEW_SIMPLE) {
HeaderRedirect($this->pSet->getShortTableName(), "list", "a=return");
exit;
}
// nothing to show.
// TODO: add some report or message
exit;
return false;
}
/**
* POST-REDIRECT-GET
* Redirect after saving the data to avoid saving again on refresh.
*/
protected function prgRedirect()
{
if (!$this->insertedSuccessfully || $this->mode != ADD_SIMPLE || !no_output_done()) {
return false;
}
// saving message
$_SESSION["message_add"] = $this->message ? $this->message : "";
// redirect
HeaderRedirect($this->pSet->getShortTableName(), $this->pageType);
// turned on output buffering, so we need to stop script
return true;
}
/**
* PRG rule, to avoid POSTDATA resend
* call after save
*/
function rulePRG()
{
if (no_output_done() && postvalue("a") == "save") {
// redirect, add a=return param for saving SESSION
HeaderRedirect($this->shortTableName, $this->getPageType(), "a=return");
// turned on output buffering, so we need to stop script
exit;
}
}
<?php
@ini_set("display_errors", "1");
@ini_set("display_startup_errors", "1");
require_once "include/dbcommon.php";
if (!isLogged()) {
HeaderRedirect("login");
return;
}
if ($_SESSION["MyURL"] == "" || !isLoggedAsGuest()) {
Security::saveRedirectURL();
}
$layout = new TLayout("menu", "CityBlueWave", "MobileBlueWave");
$layout->version = 2;
$layout->blocks["top"] = array();
$layout->containers["menu"] = array();
$layout->container_properties["menu"] = array();
$layout->containers["menu"][] = array("name" => "login_menu", "block" => "loggedas_block", "substyle" => 1);
$layout->containers["menu"][] = array("name" => "vmenu", "block" => "menu_block", "substyle" => 1);
$layout->skins["menu"] = "menu";
$layout->blocks["top"][] = "menu";
$page_layouts["menu"] = $layout;
$layout->skinsparams = array();
$layout->skinsparams["empty"] = array("button" => "button1");
$layout->skinsparams["menu"] = array("button" => "button1");
$layout->skinsparams["hmenu"] = array("button" => "button1");
$layout->skinsparams["undermenu"] = array("button" => "button1");
$layout->skinsparams["fields"] = array("button" => "button1");
$layout->skinsparams["form"] = array("button" => "button1");
$layout->skinsparams["1"] = array("button" => "button1");
$layout->skinsparams["2"] = array("button" => "button1");
require_once "include/dbcommon.php";
add_nocache_headers();
require_once "include/CompanyMaster_variables.php";
require_once "classes/searchcontrol.php";
require_once "classes/advancedsearchcontrol.php";
require_once "classes/panelsearchcontrol.php";
require_once "classes/searchclause.php";
if (!isLogged()) {
Security::saveRedirectURL();
redirectToLogin();
}
$cname = postvalue("cname");
$rname = postvalue("rname");
$accessGranted = CheckTablePermissions($strTableName, "S");
if (!$accessGranted) {
HeaderRedirect("menu");
}
$layout = new TLayout("search5", "CityBlueWave", "MobileBlueWave");
$layout->version = 2;
$layout->blocks["top"] = array();
$layout->containers["fields"] = array();
$layout->container_properties["fields"] = array();
$layout->containers["fields"][] = array("name" => "srchheader", "block" => "searchheader", "substyle" => 2);
$layout->containers["fields"][] = array("name" => "srchconditions", "block" => "conditions_block", "substyle" => 1);
$layout->containers["fields"][] = array("name" => "srchfields", "block" => "", "substyle" => 1);
$layout->containers["fields"][] = array("name" => "srchbuttons", "block" => "searchbuttons", "substyle" => 2);
$layout->skins["fields"] = "fields";
$layout->blocks["top"][] = "fields";
$page_layouts["CompanyMaster_search"] = $layout;
$layout->skinsparams = array();
$layout->skinsparams["empty"] = array("button" => "button1");
/**
* PRG rule, to avoid POSTDATA resend
*/
function rulePRG()
{
if(no_output_done() && count($this->selectedRecs) && !strlen($this->deleteMessage))
{
// redirect, add a=return param for saving SESSION
HeaderRedirect($this->shortTableName, $this->getPageType(), "a=return");
// turned on output buffering, so we need to stop script
exit();
}
}
function SecurityRedirect($inlineedit)
{
if($inlineedit == EDIT_INLINE)
{
echo printJSON(array("success" => false, "message" => "The record is not editable"));
return;
}
$_SESSION["MyURL"]=$_SERVER["SCRIPT_NAME"]."?".$_SERVER["QUERY_STRING"];
HeaderRedirect("menu", "message=expired");
}
function display($tpl = null)
{
$this->Application = JFactory::getApplication();
// Access the Component-wide default parameters, already overridden with those for the menu item (if applicable):
//$this->cparams = $this->Application->getParams('com_foxcontact');
// Can't use getParams('com_foxcontact') because JRegistry::merge converts StdClass properties to arrays
$this->cparams = $this->Application->getMenu()->getActive()->params;
// Set Meta Description
if ($description = $this->cparams->get('menu-meta_description')) {
$this->document->setDescription($description);
}
// Set Meta Keywords
if ($keywords = $this->cparams->get('menu-meta_keywords')) {
$this->document->setMetadata('keywords', $keywords);
}
// Set robots (index, follow)
if ($robots = $this->cparams->get('robots')) {
$this->document->setMetadata('robots', $robots);
}
$foxDocument = FoxDocument::getInstance();
// User interface stylesheet
$foxDocument->addResource(array("root" => "media", "filename" => "foxcontact", "type" => "css"));
// User selected stylesheet
$stylesheet = $this->cparams->get("css", "bootstrap.css");
// Removes the extension part from the file name
$stylesheet = preg_replace("/\\.[^.\\s]{3,4}\$/", "", $stylesheet);
$foxDocument->addResource(array("root" => "components", "filename" => $stylesheet, "type" => "css"));
$this->MessageBoard = new FoxMessageBoard();
$this->Submitter = new FSubmitter($this->cparams, $this->MessageBoard);
$this->FieldsBuilder = new FieldsBuilder($this->cparams, $this->MessageBoard);
$this->AjaxUploader = new FAjaxUploader($this->cparams, $this->MessageBoard);
$this->FoxCaptcha = new FCaptcha($this->cparams, $this->MessageBoard);
$this->JMessenger = new FJMessenger($this->cparams, $this->MessageBoard, $this->FieldsBuilder);
$this->DatabaseDispatcher = new DatabaseDispatcher($this->cparams, $this->MessageBoard, $this->FieldsBuilder);
$this->Antispam = new FAntispam($this->cparams, $this->MessageBoard, $this->FieldsBuilder);
$this->Newsletter = new FNewsletter($this->cparams, $this->MessageBoard, $this->FieldsBuilder);
$this->AcyMailing = new FAcyMailing($this->cparams, $this->MessageBoard, $this->FieldsBuilder);
$this->JNews = new FJNewsSubscriber($this->cparams, $this->MessageBoard, $this->FieldsBuilder);
$this->AdminMailer = new FAdminMailer($this->cparams, $this->MessageBoard, $this->FieldsBuilder);
$this->SubmitterMailer = new FSubmitterMailer($this->cparams, $this->MessageBoard, $this->FieldsBuilder);
$this->FormText .= $this->FieldsBuilder->Show();
$this->FormText .= $this->AjaxUploader->Show();
$this->FormText .= $this->AcyMailing->Show();
$this->FormText .= $this->JNews->Show();
$this->FormText .= $this->FoxCaptcha->Show();
$this->FormText .= $this->Antispam->Show();
$this->FormText .= $this->Submitter->Show();
switch (0) {
case $this->Submitter->IsValid():
break;
case $this->FieldsBuilder->IsValid():
break;
case $this->AjaxUploader->IsValid():
break;
case $this->FoxCaptcha->IsValid():
break;
case $this->Antispam->IsValid():
break;
case $this->JMessenger->Process():
break;
case $this->DatabaseDispatcher->Process():
break;
case $this->Newsletter->Process():
break;
case $this->AcyMailing->Process():
break;
case $this->JNews->Process():
break;
case $this->AdminMailer->Process():
break;
case $this->SubmitterMailer->Process():
break;
default:
// None of the previous checks are failed
// Avoid to show the Form and the button again
$this->FormText = "";
// Reset the solution of the captcha in the session after read, avoiding further (ab)uses of the same valid session
$jsession = JFactory::getSession();
$namespace = "foxcontact_component_" . $this->Application->cid;
$jsession->clear("captcha_answer", $namespace);
HeaderRedirect($this->cparams);
}
// Display the view
parent::display($tpl);
}
/**
* POST-REDIRECT-GET
* Redirect after saving the data to avoid saving again on refresh.
*/
protected function prgRedirect()
{
if (!$this->updatedSuccessfully || $this->mode != EDIT_SIMPLE || !no_output_done()) {
return false;
}
$_SESSION["message_edit"] = $this->message . "";
$keyParams = array();
foreach ($this->keyFields as $i => $k) {
$keyParams[] = "editid" . ($i + 1) . "=" . rawurldecode($this->keys[$k]);
}
HeaderRedirect($this->pSet->getShortTableName(), $this->getPageType(), implode("&", $keyParams));
exit;
return true;
}
/**
* Redirects to login.
* Displays Session expired message if the page was opened from within the project directory.
*
*/
function redirectToLogin()
{
$expired = "";
$url = "http://";
if( $_SERVER["HTTPS"] && $_SERVER["HTTPS"] != "off")
$url = "https://";
$url .= $_SERVER["HTTP_HOST"] . $_SERVER['REQUEST_URI'];
if( isset($_SERVER['HTTP_REFERER']) )
{
if( getDirectoryFromURI( $_SERVER['HTTP_REFERER'] ) == getDirectoryFromURI( $url )
&& getFilenameFromURI( $_SERVER['HTTP_REFERER'] ) != "index.htm"
&& $_SERVER['HTTP_REFERER'] != getDirectoryFromURI( $url ))
$expired = "message=expired";
}
HeaderRedirect("login", "", $expired);
exit();
}
public static function processListPageSecurity($table)
{
// user has necessary permissions
if (Security::checkPagePermissions($table, "S")) {
return true;
}
$mode = ListPage::readListModeFromRequest();
// check special permissions like lookup mode
if ($mode == LIST_LOOKUP && ListPage::checkLookupPermissions($table)) {
return true;
}
// page can not be displayed. Redirect or return error
// return error if the page is requested by AJAX
if ($mode != LIST_SIMPLE) {
Security::sendPermissionError();
return false;
}
// The user is logged in but lacks necessary permissions
// redirect to List page or Menu.
if (isLogged() && !isLoggedAsGuest()) {
HeaderRedirect("menu");
return false;
}
// Not logged in
// redirect to Login
// Current URL is already saved in session
redirectToLogin();
return false;
}
function display($tpl = null)
{
$this->Application = JFactory::getApplication();
// The following code will access the Component-wide default parameters,
// already overridden with those for the menu item (if applicable):
$this->cparams = $this->Application->getParams('com_foxcontact');
$this->Submitter = new FSubmitter($this->cparams, $this->messages);
$this->FieldsBuilder = new FieldsBuilder($this->cparams, $this->messages);
$this->AjaxUploader = new FAjaxUploader($this->cparams, $this->messages);
$this->Uploader = new FUploader($this->cparams, $this->messages);
$this->FoxCaptcha = new FCaptcha($this->cparams, $this->messages);
$this->JMessenger = new FJMessenger($this->cparams, $this->messages, $this->FieldsBuilder);
$this->Antispam = new FAntispam($this->cparams, $this->messages, $this->FieldsBuilder);
$this->AdminMailer = new FAdminMailer($this->cparams, $this->messages, $this->FieldsBuilder);
$this->SubmitterMailer = new FSubmitterMailer($this->cparams, $this->messages, $this->FieldsBuilder);
// Build $FormText
$this->FormText .= $this->FieldsBuilder->Show();
$this->FormText .= $this->AjaxUploader->Show();
$this->FormText .= $this->FoxCaptcha->Show();
$this->FormText .= $this->Antispam->Show();
// Usually we want the submit button at the bottom
$this->FormText .= $this->Submitter->Show();
switch (0) {
case $this->Submitter->IsValid():
break;
case $this->FieldsBuilder->IsValid():
break;
case $this->AjaxUploader->IsValid():
break;
case $this->Uploader->IsValid():
break;
case $this->FoxCaptcha->IsValid():
break;
case $this->Antispam->IsValid():
break;
// Spam check passed or disabled
// Spam check passed or disabled
case $this->JMessenger->Process():
break;
case $this->AdminMailer->Process():
break;
case $this->SubmitterMailer->Process():
break;
default:
// None of the previous checks are failed
// Avoid to show the Form and the button again
$this->FormText = "";
// Reset captcha solution in the session after read it, avoiding that a f****d lamer
// abuse of the *same session* without request the captcha again, to send tons of email
$jsession = JFactory::getSession();
$fsession = new FSession($jsession->getId(), $this->Application->cid, $this->Application->mid);
$fsession->PurgeValue("captcha_answer");
HeaderRedirect($this->cparams);
}
// Check for errors.
if (count($errors = $this->get('Errors'))) {
JError::raiseError(500, implode('<br />', $errors));
return false;
}
// Display the view
parent::display($tpl);
}
static function reloginAndLogoutProcess($permission)
{
global $strTableName;
include_once(getabspath('classes/loginpage.php'));
$loginXt = new Xtempl();
$loginParams = array("pageType" => PAGE_LOGIN);
$loginParams['xt'] = &$loginXt;
$loginParams["tName"]= NOT_TABLE_BASED_TNAME;
$loginParams['needSearchClauseObj'] = false;
$loginPageObject = new LoginPage($loginParams);
$loginPageObject->init();
// login automatically, if username and password are in cookies.
if( !isLogged() || isLoggedAsGuest() )
{
$username = $_COOKIE["username"];
$password = $_COOKIE["password"];
if( $username != "" && $password != "" )
{
$loginPageObject->LogIn($username, $password);
}
}
$url = $_SERVER["SCRIPT_NAME"].(!empty($_SERVER["QUERY_STRING"]) ? "?".$_SERVER["QUERY_STRING"] : '');
if (!postvalue("onFly"))
{
$_SESSION["MyURL"] = $url;
}
if (postvalue("a")=="logout")
{
$_SESSION["MyURL"] = $_SERVER["SCRIPT_NAME"];
if (!CheckTablePermissions($strTableName, $permission) || !isLogged())
{
HeaderRedirect("login", "", "");
exit();
}
if (isLogged() && !isLoggedAsGuest())
{
$loginPageObject->LogoutAndRedirect($url);
}
}
}
<?php
@ini_set("display_errors", "1");
@ini_set("display_startup_errors", "1");
require_once "include/dbcommon.php";
header("Expires: Thu, 01 Jan 1970 00:00:01 GMT");
require_once "classes/charts.php";
require_once getabspath("include/xml.php");
require_once getabspath("classes/searchclause.php");
if (!isLogged()) {
Security::saveRedirectURL();
HeaderRedirect("login", "", "message=expired");
return;
}
$xml = new xml();
$chrt_strXML = "";
if (checkTableName(postvalue("chartname"), titCHART)) {
include_once "include/" . postvalue("chartname") . "_variables.php";
$chrt_strXML = GetChartXML(postvalue("chartname"));
$chrt_array = $xml->xml_to_array($chrt_strXML);
$_SESSION["webobject"]["table_type"] = "project";
$_SESSION["object_sql"] = "";
}
$webchart = false;
if (!$chrt_strXML) {
$sessPrefix = "webchart" . postvalue('cname');
$chrt_strXML = LoadSelectedChart(postvalue('cname'));
$webchart = true;
$chrt_array = $xml->xml_to_array($chrt_strXML);
if (is_wr_project()) {
include_once "include/" . $chrt_array['settings']['short_table_name'] . "_variables.php";
/**
* Redirects to login.
* Displays Session expired message if the page was opened from within the project directory.
*
*/
function redirectToLogin()
{
$expired = "";
$url = "http://";
if ($_SERVER["HTTPS"] && $_SERVER["HTTPS"] != "off") {
$url = "https://";
}
$url .= $_SERVER["HTTP_HOST"] . $_SERVER['REQUEST_URI'];
global $logoutPerformed;
if (!$logoutPerformed && isset($_SERVER['HTTP_REFERER'])) {
if (getDirectoryFromURI($_SERVER['HTTP_REFERER']) == getDirectoryFromURI($url) && getFilenameFromURI($_SERVER['HTTP_REFERER']) != "index.htm" && $_SERVER['HTTP_REFERER'] != getDirectoryFromURI($url)) {
$expired = "&message=expired";
}
}
HeaderRedirect("login", "", "return=true" . $expired);
exit;
}
if($pageObject->isShowDetailTables && !isMobile())
{
$ids = $id;
$pageObject->jsSettings['tableSettings'][$strTableName]['dpParams'] = array();
}
// Before Process event
if($eventObj->exists("BeforeProcessView"))
$eventObj->BeforeProcessView($conn, $pageObject);
// read current values from the database
$data = $pageObject->getCurrentRecordInternal();
if (!sizeof($data))
{
HeaderRedirect("webreport_users", "list", "a=return");
exit();
}
$out = "";
$fieldsArr = array();
$arr = array();
$arr['fName'] = "id";
$arr['viewFormat'] = $pageObject->pSet->getViewFormat("id");
$fieldsArr[] = $arr;
$arr = array();
$arr['fName'] = "username";
$arr['viewFormat'] = $pageObject->pSet->getViewFormat("username");
$fieldsArr[] = $arr;
$arr = array();
$arr['fName'] = "password";
case $fcaptcha->IsValid():
break;
case $antispam->IsValid():
break;
// Spam check passed or disabled
// Spam check passed or disabled
case $jMessenger->Process():
break;
case $DatabaseDispatcher->Process():
break;
case $newsletter->Process():
break;
case $acymailing->Process():
break;
case $jnews->Process():
break;
case $adminMailer->Process():
break;
case $submitterMailer->Process():
break;
default:
// None of the previous checks are failed
// Avoid to show the Form and the button again
$form_text = "";
// Reset the solution of the captcha in the session after read, avoiding further (ab)uses of the same valid session
$jsession = JFactory::getSession();
$namespace = "foxcontact_module_" . $module->id;
$jsession->clear("captcha_answer", $namespace);
HeaderRedirect($params);
}
require JModuleHelper::getLayoutPath($app->scope, $params->get('layout', 'default'));
public static function redirectToList($table)
{
$settings = new ProjectSettings($table);
if ($settings->hasListPage()) {
HeaderRedirect($settings->getShortTableName(), "list", "a=return");
exit;
}
// no List page
HeaderRedirect("menu");
exit;
}
{
$message = $usermessage;
$status = "DECLINED";
$readavalues = true;
}
}
if($message)
$message = "<div class='".$mesClass."'>".$message."</div>";
// PRG rule, to avoid POSTDATA resend
if (no_output_done() && $inlineadd==ADD_SIMPLE && $IsSaved)
{
// saving message
$_SESSION["message_add"] = ($message ? $message : "");
// redirect
HeaderRedirect("webreport_users", $pageObject->getPageType());
// turned on output buffering, so we need to stop script
exit();
}
if($inlineadd==ADD_MASTER && $IsSaved)
$_SESSION["message_add"] = ($message ? $message : "");
// for PRG rule, to avoid POSTDATA resend. Saving mess in session
if($inlineadd==ADD_SIMPLE && isset($_SESSION["message_add"]))
{
$message = $_SESSION["message_add"];
unset($_SESSION["message_add"]);
}
$defvalues=array();
